CERT-SE:s veckobrev v.19

Polisen berättar om andra fasen i operation Cronos, där man försöker komma åt administratören och utvecklaren bakom LockBit. USA utlovar en belöning på upp till 10 miljoner dollar för tips som leder till att mannen grips eller döms.

Trevlig helg!

Nyheter i veckan

Dating apps kiss’n’tell all sorts of sensitive personal info (4 maj) https://www.theregister.com/2024/05/04/dating_apps_privacy_mozilla/?td=rt-3a

From teenage cyber-thug to Europe’s most wanted (5 maj) https://www.bbc.com/news/articles/cyxe9g4zlgpo

Using MITM to bypass FIDO2 phishing-resistant protection (5 maj) https://securityboulevard.com/2024/05/using-mitm-to-bypass-fido2-phishing-resistant-protection/

Detaljhandeln orolig för cybersäkerhet – men prioriterar den inte (6 maj) https://computersweden.se/article/2098126/detaljhandeln-orolig-for-cybersakerhet-men-prioriterar-den-inte.html

Finsk varning för Android-app som länsar bankkonton (6 maj) https://computersweden.se/article/2098160/finsk-varning-for-android-app-som-lansar-bankkonton.html

Stealing cookies: Researchers describe how to bypass modern authentication (6 maj) https://cyberscoop.com/stealing-cookies-researchers-describe-how-to-bypass-modern-authentication/

Why Your VPN May Not Be As Secure As It Claims (6 maj) https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/

New attack leaks VPN traffic using rogue DHCP servers (7 maj) https://www.bleepingcomputer.com/news/security/new-tunnelvision-attack-leaks-vpn-traffic-using-rogue-dhcp-servers/

Trafikverket satsar på prediktiv analys och automatisering – ”potentialen är enorm” (7 maj) https://computersweden.se/article/2098131/trafikverket-satsar-pa-prediktiv-analys-och-automatisering-potentialen-ar-enorm.html

Svenska kyrkan hotas på pengar (7 maj) https://www.dn.se/direkt/2024-05-07/svenska-kyrkan-hotas-pa-pengar/

Nya åtgärder mot ransomware-tjänsten LockBits administratör (8 maj) https://polisen.se/aktuellt/nyheter/nationell/2024/maj/nya-atgarder-mot-ransomware-tjansten-lockbits-administrator/ ..

Police resurrect LockBit’s site and troll the ransomware gang (6 maj) https://techcrunch.com/2024/05/06/police-resurrect-lockbits-site-and-troll-the-ransomware-gang/?guccounter=1

APT28 campaign targeting Polish government institutions (8 maj) https://cert.pl/en/posts/2024/05/apt28-campaign/

Akira and Cisco AnyConnect: The working exploit for CVE-2020-3259 (8 maj) https://www.truesec.com/hub/blog/akira-and-cisco-anyconnect-the-working-exploit-for-cve-2020-3259

Informationssäkerhet och blandat

NCS3 – Förstudie om cybersäkerhet i dricksvattenverk (2 maj) https://www.foi.se/rapporter/rapportsammanfattning.html?reportNo=FOI-R--5578--SE

Omfattande cyberattacker väntas mot sommarens OS i Paris (7 maj) https://computersweden.se/article/2098185/omfattande-cyberattacker-vantas-mot-sommarens-os-i-paris.html

IT-säkerhet fram till frontlinjen - Utvecklingsprocesser för IT-system i Försvarsmakten (7 maj) https://www.foi.se/rapporter/rapportsammanfattning.html?reportNo=FOI-R--5598--SE

Where did my VMware Security Advisories go? (7 maj) https://blogs.vmware.com/security/2024/05/where-did-my-vmware-security-advisories-go.html

Global Cybercrime Report 2024: Which Countries Face the Highest Risk? (8 maj) https://securityboulevard.com/2024/05/global-cybercrime-report-2024-which-countries-face-the-highest-risk/amp/

Choosing Secure and Verifiable Technologies (9 maj) https://www.cyber.gov.au/resources-business-and-government/maintaining-devices-and-systems/outsourcing-and-procurement/cyber-supply-chains/choosing-secure-and-verifiable-technologies

iOS 17: Add More Security to Your iPhone Messages in 4 Easy Steps (10 maj) https://www.cnet.com/tech/services-and-software/ios-17-add-more-security-to-your-iphone-messages-in-4-easy-steps/

Boeing confirms 2023 $200m ransomware demand (10 maj) https://www.airport-technology.com/news/boeing-confirms-2023-hack-200m-ransomware/